package com.sdhs.paas.gateway;

import org.springframework.boot.SpringApplication;
import org.springframework.cloud.client.SpringCloudApplication;
import org.springframework.cloud.context.config.annotation.RefreshScope;
import org.springframework.cloud.netflix.zuul.EnableZuulProxy;
import org.springframework.cloud.openfeign.EnableFeignClients;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.ComponentScan;
import org.springframework.context.annotation.Primary;
import org.springframework.scheduling.annotation.EnableScheduling;
import org.springframework.web.cors.CorsConfiguration;
import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
import org.springframework.web.filter.CorsFilter;

import com.sdhs.paas.authclient.EnableAceAuthClient;
import com.sdhs.paas.gateway.config.UserPrincipal;
import com.sdhs.paas.ratelimit.config.IUserPrincipal;

/**
 * 容器服务控制台的网关服务，所有客户端请求从网关路由到具体的微服务。
 *
 * @author lpeng
 */
@RefreshScope
@SpringCloudApplication
@EnableFeignClients({"com.sdhs"})
@EnableZuulProxy
@EnableScheduling
//@EnablePaasRestTemplate
@EnableAceAuthClient
//@EnableAceGateRateLimit
@ComponentScan(value = {"com.sdhs"})
public class PaasConfigGatewayApplication {

    public static void main(String[] args) {
        SpringApplication.run(PaasConfigGatewayApplication.class, args);
    }
    
    @Bean
    @Primary
    IUserPrincipal userPrincipal(){
        return new UserPrincipal();
    }
    /**
     * 解决前后端分离的跨域请求问题
     * */
    @Bean
    public CorsFilter corsFilter() {
        final UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
        final CorsConfiguration config = new CorsConfiguration();
        config.setAllowCredentials(true); // 允许cookies跨域
        config.addAllowedOrigin("*");// 允许向该服务器提交请求的URI，*表示全部允许。。这里尽量限制来源域，比如http://xxxx:8080 ,以降低安全风险。。
        config.addAllowedHeader("*");// 允许访问的头信息,*表示全部
        config.setMaxAge(18000L);// 预检请求的缓存时间（秒），即在这个时间段里，对于相同的跨域请求不会再预检了
        config.addAllowedMethod("*");// 允许提交请求的方法，*表示全部允许，也可以单独设置GET、PUT等
    /*    config.addAllowedMethod("HEAD");
        config.addAllowedMethod("GET");// 允许Get的请求方法
        config.addAllowedMethod("PUT");
        config.addAllowedMethod("POST");
        config.addAllowedMethod("DELETE");
        config.addAllowedMethod("PATCH");*/
        source.registerCorsConfiguration("/**", config);
        return new CorsFilter(source);
    }
}